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discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several 
examples of current research projects are examined in some detail ... 
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In this paper, we present STP, a system in which communicating end hosts use untrusted 
mobile code to remotely upgrade each other with the transport protocols that they use to 
communicate. New transport protocols are written in a type-safe version of C, distributed 
out-of-band, and run in-kernel. Communicating peers select a transport protocol to use as 
part of a TCP-like connection setup handshake that is backwards-compatible with TCP and 
incurs minimum connection setup latency. New transports ... 

Keywords: TCP-friendliness, deployment, implementation, transport protocols, untrusted 
mobile code 
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This paper discusses a link layer approach to improving TCP performance in the face of 
periodic network disconnections. Network disconnections are encountered in many 
scenarios, including being out-of-range in a wireless network, during network handoff, 
and also in the case of Networked Surfaces, a novel LAN technology which provides the 
motivation for this work.A "smart link layer" employing repetition of selected packets at 
reconnection time is shown to improve TCP's utilisation of a disconnec ... 

Keywords: TCP, disconnection, link layer, mobile networking 
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We present SABER (Survivability Architecture: Block, Evade, React), a proposed 
survivability architecture that blocks, evades and reacts to a variety of attacks by using 
several security and survivability mechanisms in an automated and coordinated fashion. 
Contrary to the ad hoc manner in which contemporary survivable systems are built-using 
isolated, independent security mechanisms such as firewalls, intrusion detection systems 
and software sandboxes-SABER integrates several different techno ... 
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Packet traces of operational Internet traffic are invaluable to network research, but public 
sharing of such traces is severely limited by the need to first remove all sensitive 
information. Current trace anonymization technology leaves only the packet headers 
intact, completely stripping the contents; to our knowledge, there are no publicly 
available traces of any significant size that contain packet payloads. We describe a new 
approach to transform and anonymize packet traces. Our tool provide ... 

Keywords: anonymization, internet, measurement, network intrusion detection, packet 
trace, privacy, transformation 
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The increasing monoculture in operating systems and key applications and the enormous 
expense of N-version programming for custom applications mean that lack of diversity is 
a fundamental barrier to achieving survivability even for high value systems that can 
afford hot spares. This monoculture makes flash worms possible. Our analysis of 
vulnerabilities and exploits identifies key assumptions required to develop successful 
attacks. We review the literature on synthetic diversity techniques, f ... 

Keywords: diversity, n-version programming, vulnerability 



13 Papers from Hotnets-ll: Unveiling the transport H 
Jeffrey Mogul, Lawrence Brakmo, David E. Lowell, Dinesh Subhraveti, Justin Moore 
January 2004 ACM SIGCOMM Computer Communication Review, Volume 34 Issue 1 
Publisher: ACM Press 

Full text available: pdf(120.97 KB) Additional Information: full citation , abstract , references 

Traditional application programming interfaces for transport protocols make a virtue of 
hiding most internal per-connection state. We argue that this information-hiding precludes 
many potentially useful application features and performance optimizations. We advocate 
a disciplined, portable, and secure interface that gives applications both "get" and "set" 
access to transport connection state. 
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An optimistic acknowledgment (opt-ack) is an acknowledgment sent by a misbehaving 
client for a data segment that it has not received. Whereas previous work has focused on 
opt-ack as a means to greedily improve end-to-end performance, we study opt-ack 
exclusively as a denial of service attack. Specifically, an attacker sends optimistic 
acknowledgments to many victims in parallel, thereby amplifying its effective bandwidth 
by a factor of 30 million (worst case). Thus, even a relatively mode ... 
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The design of the IP protocol makes it difficult to reliably identify the originator of an IP 
packet. Even in the absence of any deliberate attempt to disguise a packet's origin, 
widespread packet forwarding techniques such as NAT and encapsulation may obscure the 
packet's true source. Techniques have been developed to determine the source of large 
packet flows, but, to date, no system has been presented to track individual packets in an 
efficient, scalable fashion. We present a hash-based techn ... 

Keywords: IP traceback, computer network management, computer network security, 
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17 Storage protocol designs: A study of iSCSI extensions for RDMA (iSER) jjj 
0 Mallikarjun Chadalapaka, Hemal Shah, Uri Elzur, Patricia Thaler, Michael Ko 
v August 2003 Proceedings of the ACM SIGCOMM workshop on Network-I/O 
convergence: experience, lessons, implications 
Publisher: ACM Press 

Full text available: m pdf(281.32 KB) Additional Information: full citation , abstract , references , index terms 

The iSCSI protocol is the IETF standard that maps the SCSI family of application protocols 
onto TCP/IP enabling convergence of storage traffic on to standard TCP/IP fabrics. The 
ability to efficiently transfer and place the data on TCP/IP networks is crucial for this 
convergence of the storage traffic. The iWARP protocol suite provides Remote Direct 
Memory Access (RDMA) semantics over TCP/IP networks and enables efficient memory- 
to-memory data transfers over an IP fabric. This paper studies the ... 
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Power consumption is a major factor that limits the performance of computers. We survey 
the "state of the art" in techniques that reduce the total power consumed by a 
microprocessor system over time. These techniques are applied at various levels ranging 
from circuits to architectures, architectures to system software, and system software to 
applications. They also include holistic approaches that will become more important over 
the next decade. We conclude that power management is a ... 
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Application-level networking is a promising software organization for improving 
performance and functionality for important network services. The Xok/ExOS exokernel 
system includes application-level support for standard network services, while at the 
same time allowing application writers to specialize networking services. This paper 
describes how Xok/ExOS's kernel mechanisms and library operating system organization 
achieve this flexibility, and retrospectively shares our experiences an ... 
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How to mitigate remote attacks that exploit buffer overflow vulnerabilities on the stack 
and enable attackers to take control of the program. 
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